This security release will correct a flaw for those sites that have registration enabled. A flaw was found in the XML-RPC implementation such that a specially crafted request could allow the hacker to modify users posts.
Also, if you are using the WP-Forum plug-in, an exploit was found in that module as well.
Please visit Wordpress to learn more about these exploits and download the XML-RPC patch or new Wordpress 2.3.3 release level.
If you would like to make a comment, please fill out the form below.
Were did you find these informations?